Muhammad Hammad – Online Resume

Muhammad Hammad  Cybersecurity Undergraduate
Email
hammad968​@gmail.com Phone
+92 331 3194269 Location
Karachi, Pakistan LinkedIn
LinkedIn GitHub
GitHub TryHackMe
TryHackMe 

Summary

3rd-year Cybersecurity undergraduate at FAST-NUCES Karachi with practical experience in web application security, reconnaissance tooling, and CTF-based offensive security. Skilled in OWASP Top 10 testing, Linux environments, and vulnerability analysis. Seeking a cybersecurity internship in offensive security or SOC analysis.

Professional Experience

Offensive Security Intern (Fellowship Program), Black Byt3

Feb 2026 – Present | Remote

•Performed web application security assessments in controlled lab environments, focusing on OWASP Top 10 vulnerabilities such as XSS, IDOR, and authentication flaws, with documented proof-of-concept exploitation and remediation guidance

•Designed and developed a subdomain enumeration tool combining brute-force techniques with API-based discovery, including live host validation and HTTP status analysis

•Integrated Shodan API to enrich reconnaissance workflows by identifying exposed services, open ports, and potential CVE-linked misconfigurations

•Produced structured penetration testing reports documenting methodology, attack chains, findings, and technical proof-of-concept demonstrations

Student Laboratory Assistant, FAST National University of Computer and Emerging Sciences

•Data Structures Lab (Aug 2025 – Dec 2025): Mentored students in algorithms and data structures, assisted in assignment evaluation, debugging, and code review for logical and efficiency issues

•OOP Lab (Jan 2025 – May 2025): Guided 50+ students in object-oriented programming concepts, evaluated assignments, and provided debugging and conceptual support

CTF Achievements

•Achieved 3rd position among 56 teams in Intra-FAST CTF at FAST-NUCES Karachi (Nov 2025).

•Achieved 8th position among 50 teams in PROCOM '26 CTF at FAST-NUCES Karachi (Feb 2026).

•Achieved 8th position among 50+ teams in CyberSENTS CTF 2.0 at NED University of Engineering and Technology (Oct 2025).

•Ranked among the Top 15 in multiple university-level CTFs at FAST-NUCES Karachi during 2023-2024.

Cybersecurity Training & Ethical Hacking Experience

•Completed TryHackMe paths: Pre-Security, Cybersecurity 101, Web Fundamentals, Junior Penetration Tester

•Practiced web exploitation via PortSwigger Labs (SQLi, XSS, JWT, API security)

•Exploited vulnerable machines on VulnHub (Basic Pentesting 1, Mr Robot, So Simple 1.5)

•Performed full attack lifecycle workflows covering reconnaissance, enumeration, and exploitation on vulnerable web applications and lab environments

•Used Microsoft Threat Modeling Tool for DFD creation and basic STRIDE-based threat analysis in academic coursework

Skills

Security Operations & Analysis
•Splunk log analysis
•Wireshark traffic analysis
•Incident triage basics
Offensive & Assessment Skills
•OWASP Top 10 web testing
•Vulnerability enumeration
•Nmap, Burp Suite, ZAP, Gobuster, Hydra
Networking & Systems
•TCP/​IP, subnetting
•Linux (Bash)
•Cisco Packet Tracer

Education

Bachelor of Science in Cyber Security, FAST National University of Computer and Emerging Sciences

2023 – Present | Karachi, Pakistan

•Dean's List Honoree (Fall 2024, 3.83 SGPA)

•Current CGPA (3.23/​4.0)

•Expected Graduation: May 2027

Projects

Network Chat Portal With FTP⁠, Technologies: Python, Sockets, AES-256, FTP

2025

•Built a terminal-based encrypted chat and file transfer system using Python sockets with multithreading for concurrent users.

•Implemented AES-256 encryption and role-based access control to secure real-time communication and file sharing.